ScyllaDB Enterprise has introduced encryption at rest in its 2019.1.1 release to enhance data security for persisted data on disk, including SSTables and commit logs. While ScyllaDB already supports data in transit encryption, the new feature allows for per-table and per-node data at rest encryption using any symmetric key algorithm supported by OpenSSL, providing users with more control over encryption keys as opposed to relying solely on cloud vendor solutions. The system uses local file key storage by default, with future support planned for replicated and KMIP key storage. This approach enables users to encrypt different tables with distinct keys, manage multi-tenant data access, and maintain data security even when data is moved across different volumes. Transparent data encryption ensures minimal CPU overhead and no additional disk footprint, though it requires careful management of encryption keys and file permissions to prevent data loss and ensure data safety against various types of attacks.